🚨 ⚠️ Emergency PSA: A critical security exploit was discovered in the xz package recently, used for compression and decompression on nearly all Linux distributions.
Rawhide users ARE impacted and should immediately STOP using Rawhide until the package update is fully rolled back. (1/3)
Security Advisory: https://www.redhat.com/en/blog/urgent-security-alert-fedora-41-and-rawhide-users
The vulnerability may be present in Fedora 40 but it is not believed to be activated. Fedora 40 users are advised to use caution and update their systems soon when the rolled-back version is available, for more certainty.
Fedora 39 and 38 users are not impacted. (2/3)
Security Advisory: https://www.redhat.com/en/blog/urgent-security-alert-fedora-41-and-rawhide-users
More details available from Red Hat's blog on the vulnerability. A special, huge thank-you to our first responders and Fedora friends who have been working long hours to address this issue in top-priority. We couldn't do it without you all! 💪 (3/3)
Security Advisory: https://www.redhat.com/en/blog/urgent-security-alert-fedora-41-and-rawhide-users
